[Secure-testing-commits] r55368 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 1 14:50:38 UTC 2017
Author: carnil
Date: 2017-09-01 14:50:38 +0000 (Fri, 01 Sep 2017)
New Revision: 55368
Modified:
data/CVE/list
Log:
Fix typo in source package name
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-01 14:49:34 UTC (rev 55367)
+++ data/CVE/list 2017-09-01 14:50:38 UTC (rev 55368)
@@ -1,7 +1,7 @@
CVE-2017-14103 [use-after-free in CloseBlob (blob.c) (INCOMPLETE FIX FOR CVE-2017-11403)]
- graphicsmagick <unfixed>
- [stretch] - imagemagick <not-affected> (Incomplete fix not applied)
- [jessie] - imagemagick <not-affected> (Incomplete fix not applied)
+ [stretch] - graphicsmagick <not-affected> (Incomplete fix not applied)
+ [jessie] - graphicsmagick <not-affected> (Incomplete fix not applied)
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/98721124e51f
NOTE: http://www.openwall.com/lists/oss-security/2017/09/01/6
NOTE: https://blogs.gentoo.org/ago/2017/07/12/graphicsmagick-use-after-free-in-closeblob-blob-c/
More information about the Secure-testing-commits
mailing list